PCSC-Lite: pcscd ATR Handler Buffer Overflow

Product PCSC-Lite
Severity Medium
CVE Reference N/A
Type PCSC-Lite: pcscd ATR Handler Buffer Overflow

MWR InfoSecurity identified a vulnerability in PCSC-Lite’s pcscd daemon. The vulnerability can be triggered using a malicious smart card. An attacker could use this vulnerability to trigger a denial of service condition or potentially execute arbitrary code in the target system. To successfully exploit this vulnerability the attacker will be required to insert a specially crafted smart card in the target system.